Cisco Small Business RV110W, RV130, RV130W, and RV215W Series Routers Management Interface Vulnerabilities

2020-06-1716:00:00

tools.cisco.com

0.007 Low

EPSS

Percentile

80.0%

JSON

Multiple vulnerabilities in the web-based management interface of Cisco RV110W, RV130, RV130W, and RV215W Series Routers could allow an authenticated, remote attacker with administrative privileges to execute arbitrary commands.

For more information about these vulnerabilities, see the Details [“#details”] section of this advisory.

Cisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities.

This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rv-routers-injection-tWC7krKQ [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rv-routers-injection-tWC7krKQ”]

Affected configurations

Vulners

Node

ciscorv130w_wireless-n_multifunction_vpn_router_firmwareMatchany

ciscorv110w_wireless-n_vpn_firewall_firmwareMatchany

ciscorv215w_wireless-n_vpn_router_firmwareMatchany

ciscorv130w_wireless-n_multifunction_vpn_router_firmwareMatchany

ciscorv110w_wireless-n_vpn_firewall_firmwareMatchany

ciscorv215w_wireless-n_vpn_router_firmwareMatchany

CPENameOperatorVersion
cisco rv130w wireless-n multifunction vpn router firmwareeqany
cisco rv110w wireless-n vpn firewall firmwareeqany
cisco rv215w wireless-n vpn router firmwareeqany
cisco rv130w wireless-n multifunction vpn router firmwareeqany
cisco rv110w wireless-n vpn firewall firmwareeqany
cisco rv215w wireless-n vpn router firmwareeqany

Name	Operator	Version
cisco rv130w wireless-n multifunction vpn router firmware	eq	any
cisco rv110w wireless-n vpn firewall firmware	eq	any
cisco rv215w wireless-n vpn router firmware	eq	any
cisco rv130w wireless-n multifunction vpn router firmware	eq	any
cisco rv110w wireless-n vpn firewall firmware	eq	any
cisco rv215w wireless-n vpn router firmware	eq	any